Mark Lussier
Chief Software Architect
GE Power Systems
eBusiness
DC 8*433-2232
-----Original Message-----Hi all,
From: wim veninga [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 17, 2000 11:05 AM
To: Orion-Interest
Subject: Help: Mapping roles to users.I have created an set of Enterprise beans and in the assembly descriptor I have
defined a set of roles that have some permissions to run methods ( in ejb-jar.xml).
When I deploy the application and the modify orion-ejb-jar.xml to map the
roles to different groups in the assembly descriptor and than re-start or re-deploy the application (using orionconsole.jar) orion overwrites the changes I've made in
orion-ejb-jar.xml (see below for the deployment descriptors ejb-jar.xml, orion-ejb-jar.xml and orion-ejb-jar.xml after re-starting/re-deploying).Has anybody done this in orion (with ejb 2.0 on orion 1.2.0) ? If so can you sent me the deployment descriptors ?
Have I made an error ? (The groups are defined in principals.xml and the role-mappings aren't being overwritten in orion-application.xml).
Does the default-method-acces tag in orion-ejb-jar.xml means that all the methods that aren't tied to a method permission in ejb-jar.xml can
be called by the group/user and that all the methods that are can't be called ?Thanks in advance,
Greetings
Wim VeningaIn ejb-jar.xml:
<?xml version="1.0"?>
<!DOCTYPE ejb-jar PUBLIC "-//Sun Microsystems, Inc.//DTD Enterprise JavaBeans 1.1//EN" "http://java.sun.com/j2ee/dtds/ejb-jar_2_0.dtd">
<!-- KOZIJNCALC BEANS -->
<ejb-jar>
<description>The deployment descriptor for the com.fnv.kozijncalc beans</description>
<enterprise-beans>
<entity>
<description></description>
<ejb-name>Klant</ejb-name>
<home>com.fnv.kozijncalc.entities.klanten.KlantHome</home>
<remote>com.fnv.kozijncalc.entities.klanten.Klant</remote>
<ejb-class>com.fnv.kozijncalc.entities.klanten.KlantEJB</ejb-class>
<persistence-type>Container</persistence-type>
<prim-key-class>java.lang.Integer</prim-key-class>
<reentrant>False</reentrant>
<cmp-field><field-name>klantNr</field-name></cmp-field>
<cmp-field><field-name>klantNaam</field-name></cmp-field>
<cmp-field><field-name>klantAdres</field-name></cmp-field>
<cmp-field><field-name>klantPostcode</field-name></cmp-field>
<cmp-field><field-name>klantPlaats</field-name></cmp-field>
<cmp-field><field-name>klantLand</field-name></cmp-field>
<cmp-field><field-name>klantTelefoon</field-name></cmp-field>
<cmp-field><field-name>klantContactPersoon</field-name></cmp-field>
<primkey-field>klantNr</primkey-field>
</entity>
<session>
<ejb-name>KlantSession</ejb-name>
<home>com.fnv.kozijncalc.sessions.klanten.KlantSessionHome</home>
<remote>com.fnv.kozijncalc.sessions.klanten.KlantSession</remote>
<ejb-class>com.fnv.kozijncalc.sessions.klanten.KlantSessionBean</ejb-class>
<session-type>Stateless</session-type>
<transaction-type>Container</transaction-type>
<ejb-ref>
<ejb-ref-name>kozijn/ejb/KlantHome</ejb-ref-name>
<ejb-ref-type>Entity</ejb-ref-type>
<home>com.fnv.kozijncalc.entities.klanten.KlantHome</home>
<remote>com.fnv.kozijncalc.entities.klanten.Klant</remote>
<ejb-link>Klant</ejb-link>
</ejb-ref>
</session>
</enterprise-beans><assembly-descriptor>
<!-- Security roles -->
<security-role>
<role-name>calculator</role-name>
</security-role>
<security-role>
<role-name>hoofd_calculator</role-name>
</security-role>
<security-role>
<role-name>werkvoorbereiding</role-name>
</security-role><!-- The method permissions that the different roles have to call methods -->
<!-- The method permissions for the werkvoorbereiding role, currently not any methods-->
<method-permission>
<role-name>werkvoorbereiding</role-name>
</method-permission>
<!-- The calculator method permissions -->
<method-permission><description>The permissions of the calculator role</description>
<role-name>calculator</role-name><method>
<description>The permissions for the klant entity bean remote</description>
<ejb-name>Klant</ejb-name>
<method-intf>Remote</method-intf>
<method-name>*</method-name>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findAll</method-name>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findByKlantNaam</method-name>
<method-params>
<method-param>java.lang.String</method-param>
</method-params>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findByPrimaryKey</method-name>
<method-params>
<method-param>java.lang.Integer</method-param>
</method-params>
</method>
<method>
<description>The permissions for the klant session bean </description>
<ejb-name>KlantSession</ejb-name>
<method-name>create</method-name>
</method>
<method>
<description>The permissions for the klant session bean </description>
<ejb-name>KlantSession</ejb-name>
<method-name>findAllKlanten</method-name>
</method>
</method-permission><!-- The hoofd calculator method permissions -->
<method-permission>
<description>The permissions of the hoofd calculator role</description>
<role-name>hoofd_calculator</role-name>
<method>
<description>The permissions for the klant entity bean remote</description>
<ejb-name>Klant</ejb-name>
<method-intf>Remote</method-intf>
<method-name>*</method-name>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findAll</method-name>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findByKlantNaam</method-name>
<method-params>
<method-param>java.lang.String</method-param>
</method-params>
</method>
<method>
<description>A permission for the klant entity bean home</description>
<ejb-name>Klant</ejb-name>
<method-intf>Home</method-intf>
<method-name>findByPrimaryKey</method-name>
<method-params>
<method-param>java.lang.Integer</method-param>
</method-params>
</method>
<method>
<description>The permissions for the klant session bean </description>
<ejb-name>KlantSession</ejb-name>
<method-name>*</method-name>
</method>
</method-permission><!-- The container transaction properties -->
<container-transaction>
<method>
<ejb-name>Klant</ejb-name>
<method-name>*</method-name>
</method>
<trans-attribute>Supports</trans-attribute>
</container-transaction>
<container-transaction>
<method>
<ejb-name>KlantSession</ejb-name>
<method-name>*</method-name>
</method>
<trans-attribute>Supports</trans-attribute>
</container-transaction></assembly-descriptor>
</ejb-jar>
In orion-ejb-jar.xml after changes before re-start or re-deploy:
<?xml version="1.0"?>
<!DOCTYPE orion-ejb-jar PUBLIC "-//Evermind//DTD Enterprise JavaBeans 1.1 runtime//EN" "http://www.orionserver.com/dtds/orion-ejb-jar.dtd"><orion-ejb-jar deployment-version="1.2.0" deployment-time="e107600659">
<enterprise-beans><!-- THE KLANT ENTITY -->
<entity-deployment name="Klant" location="kozijn/ejb/KlantHome" wrapper="KlantHome_EntityHomeWrapper177" table="klanten" data-source="jdbc/kozijn/KlantenDS">
<primkey-mapping>
<cmp-field-mapping name="klantNr" persistence-name="klantNr" />
</primkey-mapping>
<cmp-field-mapping name="klantNaam" persistence-name="klantNaam" />
<cmp-field-mapping name="klantAdres" persistence-name="klantAdres" />
<cmp-field-mapping name="klantPostcode" persistence-name="klantPostcode" />
<cmp-field-mapping name="klantPlaats" persistence-name="klantPlaats" />
<cmp-field-mapping name="klantLand" persistence-name="klantLand" />
<cmp-field-mapping name="klantTelefoon" persistence-name="klantTelefoon" />
<cmp-field-mapping name="klantContactPersoon" persistence-name="klantContactPersoon" />
<finder-method query="">
<!-- Generated SQL: "select klanten.klantNr, klanten.klantNaam, klanten.klantAdres, klanten.klantPostcode, klanten.klantPlaats, klanten.klantLand, klanten.klantTelefoon, klanten.klantContactPersoon from klanten" -->
<method>
<ejb-name>Klant</ejb-name>
<method-name>findAll</method-name>
<method-params>
</method-params>
</method>
</finder-method>
<finder-method query="$klantNaam = $1">
<!-- Generated SQL: "select klanten.klantNr, klanten.klantNaam, klanten.klantAdres, klanten.klantPostcode, klanten.klantPlaats, klanten.klantLand, klanten.klantTelefoon, klanten.klantContactPersoon from klanten where klanten.klantNaam = ?" -->
<method>
<ejb-name>Klant</ejb-name>
<method-name>findByKlantNaam</method-name>
<method-params>
<method-param>java.lang.String</method-param>
</method-params>
</method>
</finder-method>
</entity-deployment><!-- THE KLANTSESSION BEAN -->
<session-deployment name="KlantSession" location="kozijn/ejb/KlantSession" wrapper="KlantSessionHome_StatelessSessionHomeWrapper175" timeout="3600" persistence-filename="KlantSession">
<ejb-ref-mapping name="kozijn/ejb/KlantHome" />
</session-deployment>
</enterprise-beans><assembly-descriptor>
<!-- THE ROLE-GROUP MAPPINGS -->
<security-role-mapping name="calculator">
<group name="calculatoren" />
</security-role-mapping>
<security-role-mapping name="hoofd_calculator">
<group name="hoofd-calculatoren" />
</security-role-mapping>
<security-role-mapping name="werkvoorbereiding">
<group name="werkvoorbereidingen" />
</security-role-mapping><!-- THE DEFAULT METHOD ACCESS -->
<default-method-access>
<security-role-mapping>
<group name="administrators" />
</security-role-mapping>
</default-method-access>
</assembly-descriptor>
</orion-ejb-jar>orion-ejb-jar.xml after re-start or re-deploy:
<?xml version="1.0"?>
<!DOCTYPE orion-ejb-jar PUBLIC "-//Evermind//DTD Enterprise JavaBeans 1.1 runtime//EN" "http://www.orionserver.com/dtds/orion-ejb-jar.dtd"><orion-ejb-jar deployment-version="1.2.0" deployment-time="e107600659">
<enterprise-beans><!-- THE KLANT ENTITY -->
<entity-deployment name="Klant" location="kozijn/ejb/KlantHome" wrapper="KlantHome_EntityHomeWrapper177" table="klanten" data-source="jdbc/kozijn/KlantenDS">
<primkey-mapping>
<cmp-field-mapping name="klantNr" persistence-name="klantNr" />
</primkey-mapping>
<cmp-field-mapping name="klantNaam" persistence-name="klantNaam" />
<cmp-field-mapping name="klantAdres" persistence-name="klantAdres" />
<cmp-field-mapping name="klantPostcode" persistence-name="klantPostcode" />
<cmp-field-mapping name="klantPlaats" persistence-name="klantPlaats" />
<cmp-field-mapping name="klantLand" persistence-name="klantLand" />
<cmp-field-mapping name="klantTelefoon" persistence-name="klantTelefoon" />
<cmp-field-mapping name="klantContactPersoon" persistence-name="klantContactPersoon" />
<finder-method query="">
<!-- Generated SQL: "select klanten.klantNr, klanten.klantNaam, klanten.klantAdres, klanten.klantPostcode, klanten.klantPlaats, klanten.klantLand, klanten.klantTelefoon, klanten.klantContactPersoon from klanten" -->
<method>
<ejb-name>Klant</ejb-name>
<method-name>findAll</method-name>
<method-params>
</method-params>
</method>
</finder-method>
<finder-method query="$klantNaam = $1">
<!-- Generated SQL: "select klanten.klantNr, klanten.klantNaam, klanten.klantAdres, klanten.klantPostcode, klanten.klantPlaats, klanten.klantLand, klanten.klantTelefoon, klanten.klantContactPersoon from klanten where klanten.klantNaam = ?" -->
<method>
<ejb-name>Klant</ejb-name>
<method-name>findByKlantNaam</method-name>
<method-params>
<method-param>java.lang.String</method-param>
</method-params>
</method>
</finder-method>
</entity-deployment><!-- THE KLANTSESSION BEAN -->
<session-deployment name="KlantSession" location="kozijn/ejb/KlantSession" wrapper="KlantSessionHome_StatelessSessionHomeWrapper175" timeout="3600" persistence-filename="KlantSession">
<ejb-ref-mapping name="kozijn/ejb/KlantHome" />
</session-deployment>
</enterprise-beans><assembly-descriptor>
<!-- THE ROLE-GROUP MAPPINGS -->
<security-role-mapping name="calculator">
<group name="" />
</security-role-mapping>
<security-role-mapping name="">
<group name="hoofd-calculatoren" />
</security-role-mapping>
<security-role-mapping name="">
<group name="werkvoorbereidingen" />
</security-role-mapping><!-- THE DEFAULT METHOD ACCESS -->
<default-method-access>
<security-role-mapping>
<group name="administrators" />
</security-role-mapping>
</default-method-access>
</assembly-descriptor>
</orion-ejb-jar>